U.S. Patent 



Oct. 9, 2001 



Sheet 1 of 39 



US 6,300,863 B1 



Agent implanted via hardware, software, firmware 
— (such as ROM, Flash ROM, EPROM, microprocessor) 

"Agent" A 

implanted ^ ^ / 

on "Client" Ip-^l |-p^] 

Device i-8~^ i ! 



' Private 
, Network 



Leased [Line 



The Internet 




' Computer 



£7ec/Aowc Device 

Cablevision Device Laptop Computer 

^ “A, k“ 



Telecom - 
munnication 
Link 



Teleohone Line 



I Public Switchea 
( Telephone Network 

S (Psm) r' 

Telephone Line f 



Internet 

Provider I I 




Radio Tower 



Satellite 



Cable Network 




r 

"Host" 

Monitoring 

System 



Automatic Number Identification 

Dialed Number Identification I 

1 ond 

j C 1 Filtering 



Processing, 
Auditing 
and , 

Communication 




N4 



E-mail 




Fax 



, Pager 



Phone. 



FIG. I 



Owner 



Notify 

Owners 






U.S. Patent 



Oct. 9, 2001 



Sheet 2 of 39 



US 6,300,863 B1 



9x 






U.S. Patent 



Oct. 9, 2001 



Sheet 3 of 39 



US 6,300,863 B1 







4 



U.S. Patent 



Oct. 9, 2001 



Sheet 5 of 39 



US 6,300,863 B1 










U.S. Patent 



Oct. 9, 2001 



Sheet 6 of 39 



US 6,300,863 B1 



FIG. 4A-2 





U.S. Patent Oct. 9,2001 Sheet 7 of 39 US 6,300,863 B1 




FIG. 4B 





U.S. Patent 



Oct. 9, 2001 



Sheet 8 of 39 



US 6,300,863 B1 




FIG. 4C 










U.S. Patent 



Oct. 9, 2001 Sheet 9 of 39 
y^700 



US 6,300,863 B1 



^CHINE IS POWERED ON OR RESET) 



mCHINFS START-UP ROM 
PROCEDURE BEGINS 



POWER ON SELF TEST BEGINS 
PERFORM RELIABILITY TEST | - 
CHECK FOR ROM EXTENSIONS | 

^F— 



EXTENSION 
K FOUND? y 



AGENT?. 



GIVE CONTROL TO ROM EXTENSION 



■ 707 




^ES 


\F709 


"AGENT 


" START 




r~7io 



"AGENT" WORKING 

— r 

"AGENT” STOPPED 

1-. I ' 

/ 712 



POWER ON SELF TEST ENDED I ^^AN FOR NEXT ROM EXTENSION 



— — t I 

LOAD THE OPERATING 5XS/B/ K 

t 

.OPERATING SYSTEM RUNNING^ 



715 



FIG. 5 






U.S. Patent Oct 9, 2001 sheet 10 of 39 
721 




AGENT RESIDES IN BOOT 
SECTOR OE HARDDISK 




US 6,300,863 B1 
722 



COMPUTER 

HARDDISK 



AGENT LOADS AND RUNS 
FROM HARDDISK 



FIG. 6 A 




723 




735 



FIG. 6B 





U.S. Patent 



Oct 9, 2001 



Sheet 11 of 39 



US 6,300,863 B1 




FIG. 6C 



751 




FIG. Z4 







U.S. Patent 



Oct. 9, 2001 



Sheet 12 of 39 



US 6,300,863 B1 



Security Protocol Component o?' 

Agent (SPC) built into BIOS 
^Performs device tracking only 



Tracked Device 



/SPC asks: Is 
Operating System 
installed and active 
the harddisk/ 



Force "Is it 
time to call?" 
to Yes 



Remaining 
components of 
Agent installed 
^n harddisk. > 



SPC asks: \ 
Is it time to call 
\ the Server? > 



Functionality of harddisk-based Agent 
software determined by customer 
needs. 

At customer-specified intervals, 
disk-based Agent establishes link with 
Server, communicates using data 
encryption, and performs desired tasks 



Agent establishes communication 
link with remote Server. 



Server asks Agent for 
identifying information 



Agent responds with ID 
of tracked device. 



Server sends requests 
for future Agent activity. 



Server 



All communication 
between Agent and 
Server uses data 
encryption for security. 



Agent responds to Server 
requests 



FIG. 7B 





i 

U.S. Patent Oct. 9, 2001 sheet 13 of 39 US 6,300,863 B1 




FOR CONFIGURATION AND STATUS 




QA 







ISA BUS CONNECTION TO CPU 
MAPPED TO I/O PORT ADDRESS 



FIG. 8B 






U.S. Patent 



Oct. 9, 2001 



Sheet 14 of 39 



US 6,300,863 B1 




PC MOTHER BOARD 
831 



FIG. 8C 







Modem Card / Module 



U.S. Patent 



Oct. 9, 2001 



Sheet 15 of 39 



US 6,300,863 B1 




FIG. 8D 





U.S. Patent 



Oct. 9, 2001 



Sheet 16 of 39 



US 6,300,863 B1 




FIG. 8E 



Modem Agent 

Power Up 



Contact With 
Agent 




Alert Mode Contact 
Interval Timeout 



'cheduhd Contact 
or Forced Contact 



FIG. 8F 






U.S. Patent 



Oct. 9, 2001 



Sheet 17 of 39 



US 6,300,863 B1 




FIG. 9 












U.S. Patent 



Oct. 9, 2001 



Sheet 18 of 39 



US 6,300,863 B1 




FIG. 10A 





U.S. Patent Oct.9,2001 sheet 19 of 39 US 6 , 300,863 B 1 





Oct. 9, 2001 



Sheet 20 of 39 



US 6,300,863 B1 



START 



WAITING FOR A CLIENT 
TELECOMMUNICATION BEGIN SIGNAL 



INITIATES SESSI0N\ 



PREPARE TO RECEIVE 
DATA PACKET FROM CLIENT 



^AODITIONAI\no 

DATA 

\PACKETX 

\ 



RECEIVE DATA PACKET\ 



.^DETERMINE 
mENT NEEDS DATA 0^ 
COMMANDS 



TERMINA 



PREPARE TO SEND 
DATA PACKET 



^ADDITIONAl\fjf 

DATA 

\MCKn/ 



SEND OArA PACKET] 



FIG. 11 A 




U.S. Patent 



Oct. 9, 2001 



Sheet 21 of 39 



US 6,300,863 B1 




36g 



FIG. 1 



/ C ENCODED CLIENT 
IDENTIFICATION 

\ mMmms^mxmxY<i<.os.com\ 

DATE AND TIME 37 DOMAIN NAME 39 






U.S. Patent Oct. 9,2001 sheet 22 of 39 US 6,300,863 B1 




FIG. 12 





U.S. Patent 



Oct. 9, 2001 



Sheet 23 of 39 



US 6,300,863 B1 




90 

FIG. 15A 



THE SECURITY PROTOCOL COMPONENT IN THE 
MICROCODE PATCH INITIATES COMMUNICATION 
WITH THE MODEM ASYNCHRONOUSLY OF THE 
NORMAL CODE STREAM (i.e. THE OPERATING 
SYSTEM OR APPUCATION). 




FIG. 1JB 







U.S. Patent 



Oct. 9, 2001 



Sheet 24 of 39 



US 6,300,863 B1 




FIG. 14 





U.S. Patent 



Oct 9, 2001 



Sheet 25 of 39 



US 6,300,863 B1 



64 



% 




66 - 



sTm^ 



\j 



NORMAL POST ROUTINE 

- i 



67 -. 



LOAD PARTITION BOOT SECTOR 

I 



LOAD COMPUTRACE OPERATING SYSTEM 
BOOT SECTOR 




\RESERVE SPACE AT THE CEILING OF 
CONVENTIONAL MEMORY 



'\J 



I 



72- 






HOOK INTERRUPT 2Fh 
POINTING IT TO THE COMPUTRACE AGENT 

z t 



75- 



74- 



HOOK INTERRUPT IJh 
POINTING IT TO THE COMPUTRACE AGENT 

\ 



SAVE OLD TIMER INTERRUPT 
HOOK TIMER INTERRUPT 



I 



7l 



RESTORE CPU REGISTERS 

- i 



LOAD ORIGINAL OPERATING SYSTEM 
BOOT SECTOR 



76- 



77- 



I 



LOAD opmrm systeu 

I 



OPERATING SYSTEU RUHNINCy 



FIG. 14A 





U.S. Patent 



OcL 9, 2001 



Sheet 26 of 39 



US 6,300,863 B1 




FIG. 14B 





U.S. Patent 



Oct. 9, 2001 



Sheet 27 of 39 




US 6,300,863 B1 



FIG. 14C 





U.S. Patent 



Oct. 9, 2001 



Sheet 28 of 39 



US 6,300,863 B1 




FIG. 14D 





U.S. Patent Oct. 9, 2001 sheet 29 of 39 US 6,300,863 B1 


















U.S. Patent Oct. 9, 2001 Sheet 30 of 39 



US 6,300,863 B1 



'Attempt to send a DNS query t^ 
Host via Internet every 4 houQ 














U.S. Patent 



Oct. 9, 2001 



Sheet 31 of 39 



US 6,300,863 B1 




FIG. 14G 




U.S. Patent 



Oct. 9, 2001 



Sheet 33 of 39 



US 6,300,863 B1 





DIGIT POSITION IN 

Clisnt Coniputor Serio! Nufnbcr^ SERIAL NUMBER 



U.S. Patent 



Oct 9, 2001 



Sheet 34 of 39 



US 6,300,863 B1 




FIG. 15A 





U.S. Patent 



Oct. 9, 2001 



Sheet 35 of 39 



US 6,300,863 B1 




FIG. 16 




The agent gather^ 
serial / info | 

■ 

The agent ESN 
is combined with 
serial #'s to 
generate serial 
string or validation] 
key 

T 




d87w040k46pc0I234cpu890I2modem23456key 
board34567printer45678card56789program6789 
0program78901program...mousel2345. 

I 



program7890l“ 



T 

424 



modem23456 



416 



/ I Agent | jj 



426 

417 






The agent 

transmits the 
serial string 
or 

validation key 
to the server, 



FIG. 17A 



413 



FIG. 17B 










U.S. Patent Oct. 9 , 2001 sheet 36 of 39 US 6,300,863 B1 




V J 

FIG. 18B 





U.S. Patent 



OcL 9, 2001 



Sheets? of 39 



US 6,300,863 B1 



CompuTrace - ^ 

Walk-up Reader Campar^ 

"Keys" Bureau 

45 ^ 

" Cusiomeif | 

Specific I — I 



I CompuTrace 
"Guardian" System 
at InaCom, or at 
Inacom customer site 

fml 



Master 



m 



456 






I_3 



Modem 



Programmable client 
call-return logic 



& ^\ 




: 464 



Enterprise & Network 
rvices 




File System 
Based Storage: 
462 



System Data from 
Tally or Tangram ( 



Network Collector 
Executable, w/ CT 
Reader Key 




Protected Storage in (BirthCertific^ 
the MBR Partition Gap: \^ta File © J 



'CompuTra^ 
Client j 




460 



450 



FIG. 20 





U.S. Patent 



Oct. 9, 2001 



Sheet 38 of 39 



US 6,300,863 B1 





















U.S. Patent 



Oct 9, 2001 



Sheet 39 of 39 



US 6,300,863 B1 




Security Protocol Component of 
Agent (SPC) built into BIOS 
Performs device tracking only 





Remaining 
components of 
Agent installed 
harddisk^ 



Functionality of harddisk-based Agent 
software determined by customer 

At customer-specified interval, 
disk-based Agent establishes link with 
Server, communicates using data 
encryption, and performs desired tasks 



Agent establishes communication 
link with remote Server. 



655 ' 







Server asks Agent for 
indentifying information 



656 - 



Server 



"\J Agent responds with ID 
of tracked device. 



657 . 



\J 



658 . 



Server sends requests 
for future Agent activity. 






Agent responds to Server 
requests 



AH communication 
between Agent and 
Server uses data 
encryption for security. 



FIG. 25 




